Dark Reading

Microsoft Follina Bug Is Back in Meme-Themed Cyberattacks Against Travel Orgs

A threat actor is exploiting last year's Follina (RCE) remote code execution vulnerability to deploy the XWORM remote access trojan (RAT) and data-stealer against targets in the hospitality industry.
TechRepublic

Cross-site scripting attacks: A cheat sheet

Even the most trustworthy-looking website could trick you into giving up personal details through cross-site scripting. Here's what you need to know about XSS attacks ...